Third-Party Cyber Risk Analyst

Madison-Davis

Dallas, TX

JOB DETAILS
SKILLS
Analysis Skills, Artificial Intelligence (AI), Automation, Business Case, CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, Communication Skills, Computer Science, Computer Security, Consulting, Customer Relations, Documentation, Emerging Technology, Information Technology & Information Systems, Information Technology/Systems Audit, Information/Data Security (InfoSec), Internet Security, Management of Information Systems/Technology (MIS), Operational Audit, Presentation/Verbal Skills, Process Improvement, Process Quality, Procurement Software, Purchasing/Procurement, Quality Management, Risk, Risk Analysis, Risk Management, Security Analysis, Supply Chain, Time Management, Use Cases, Vendor/Supplier Evaluation, Workflow Analysis, Writing Skills
LOCATION
Dallas, TX
POSTED
13 days ago

A growing enterprise organization is seeking a Third-Party Cyber Risk Analyst to support vendor security, technology risk, and cyber assurance activities across a complex business environment.

This role is ideal for someone with a strong foundation in GRC, cybersecurity, IT audit, vendor risk, or technology assurance who can evaluate third-party risk, communicate findings clearly, and help improve the consistency and quality of vendor assessment processes.

The team is also exploring responsible use of AI-assisted tools to streamline review workflows, making this a strong fit for someone who can use modern technology effectively while applying sound risk judgment.

What You'll Do:
  • Conduct cyber risk reviews for vendors, third parties, technology tools, and business requests.
  • Review security documentation, control evidence, questionnaires, SOC reports, and vendor artifacts.
  • Assess risks related to data sharing, system connectivity, third-party services, AI-enabled tools, and non-standard integrations.
  • Partner with procurement, security, risk, compliance, technology, and business stakeholders.
  • Translate technical findings into clear risk summaries, recommendations, and business-ready documentation.
  • Support quality reviews of assessment reports and improve consistency across deliverables.
  • Identify opportunities to streamline intake, assessment, scoring, reporting, and monitoring workflows.
  • Use AI-assisted tools responsibly to improve review speed while validating accuracy and completeness.

QUALIFICATIONS
  • 3+ years of experience in GRC, cybersecurity, IT audit, operational risk, technology assurance, information security, or related risk functions.
  • Experience with supplier risk, vendor risk, third-party risk, supply chain risk, or security assessment workflows.
  • Strong understanding of information security controls, risk management, IT general controls, and audit concepts.
  • Ability to review vendor security documentation and identify control gaps, risk themes, and remediation needs.
  • Familiarity with AI-enabled enterprise technologies and related risk considerations.
  • Experience using AI-assisted tools for analysis, documentation, reporting, or workflow improvement.
  • Strong written communication, stakeholder management, and presentation skills.
  • Ability to manage multiple reviews while maintaining quality and meeting deadlines.
  • Bachelor's degree in cybersecurity, information technology, computer science, MIS, or a related field.

PREFERRED EXPERIENCE
  • CTPRP, CRISC, CISA, CISM, or similar certification.
  • AI governance, AI risk, or emerging technology risk experience.
  • Familiarity with cybersecurity, AI governance, or third-party risk frameworks.
  • Experience supporting automation, process improvement, or AI-enabled workflow initiatives.
  • Consulting, advisory, or client-facing risk experience.

What Success Looks Like:
  • Clear, consistent, and business-ready vendor risk assessments.
  • Strong collaboration across business, risk, security, procurement, and technology teams.
  • Practical risk recommendations based on data exposure, connectivity, controls, and business use case.
  • Improved efficiency and quality across third-party assessment workflows.
  • Responsible use of AI tools without replacing human judgment.

About the Company

M

Madison-Davis